$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/dda93604-a568-44c8-b94d-2b3dbf3f82ef.roa File: dda93604-a568-44c8-b94d-2b3dbf3f82ef.roa (raw, json) Hash identifier: vH2ihFJCHNSVnIDgFEJZMSx53Pu8DUropX53eW1cmhE= Subject key identifier: 70:24:26:3C:19:08:85:25:9F:B9:5F:9D:08:18:6E:8A:96:A5:8D:1F Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 75A485C66939CD1BCF186A6719E9C599FF533F Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/dda93604-a568-44c8-b94d-2b3dbf3f82ef.roa Signing time: Mon 17 Mar 2025 15:20:48 +0000 ROA not before: Mon 17 Mar 2025 15:20:48 +0000 ROA not after: Mon 21 Apr 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2605:9cc0:c01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:a4:85:c6:69:39:cd:1b:cf:18:6a:67:19:e9:c5:99:ff:53:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Mar 17 15:20:48 2025 GMT Not After : Apr 21 23:59:59 2025 GMT Subject: CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a0:ae:aa:8f:3c:93:c9:88:d1:4f:7a:0d:d2: ee:aa:44:6d:c6:17:a4:3d:85:8d:e1:33:35:e5:1a: 0d:6f:b1:88:09:b1:e2:7e:07:94:06:66:1e:c0:43: 53:bc:39:86:8d:26:53:84:9f:51:59:c6:63:8d:9b: 06:e8:a9:61:39:18:e3:fc:32:61:79:42:7b:43:56: 0b:d6:5d:fb:e1:56:39:fb:3b:3a:bc:23:e2:3b:98: b2:9b:36:e4:d5:68:9d:d7:f5:7e:ed:c8:e7:00:84: 32:14:d7:ca:61:1d:aa:29:e1:2e:bf:e4:c6:fc:4d: 61:fb:b9:a2:ff:3f:d7:f0:85:07:a4:79:2b:f3:17: 3c:b7:d8:34:e3:19:8f:2c:20:5a:f1:b4:54:9a:71: 09:d8:de:0f:23:10:02:82:0e:5d:55:db:b8:8b:75: 0d:5b:97:c1:6e:aa:ca:69:f5:17:21:6f:68:ee:4b: 81:0c:3d:53:4a:ae:71:b7:0d:35:55:fa:85:5f:04: 7d:3b:9b:a0:98:69:eb:a8:86:05:a8:70:ba:73:9d: cc:db:be:4d:49:97:e2:4b:b3:9d:65:44:c6:22:8e: c3:1c:c0:16:18:07:7e:07:87:3d:0f:18:a2:55:91: 36:0e:00:3a:5b:84:95:79:5a:49:78:b9:5d:5c:f3: 8f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:24:26:3C:19:08:85:25:9F:B9:5F:9D:08:18:6E:8A:96:A5:8D:1F X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/dda93604-a568-44c8-b94d-2b3dbf3f82ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:c01::/48 Signature Algorithm: sha256WithRSAEncryption 53:b3:e9:73:6b:18:03:2d:cf:4e:94:d3:a8:9b:f0:18:b9:5f: 04:7d:ac:46:64:aa:b9:ab:20:0b:ca:b4:a2:79:cf:1c:c6:b6: 64:d1:b6:8d:04:63:55:56:d0:a6:b2:a2:37:e0:25:bb:8c:c8: f6:39:11:bc:bc:75:52:74:9f:72:d8:db:1c:1a:b7:1a:8f:cf: 51:a6:50:6a:6a:3a:d0:a0:69:9e:c4:dc:bd:58:5f:c1:d9:bf: 95:84:2f:4d:bf:dd:fd:72:22:91:0b:84:71:58:17:40:16:58: c2:34:69:94:2e:25:31:63:f1:ce:04:8d:45:6d:7b:b7:67:02: 64:23:76:c0:62:85:bf:a3:9c:93:12:90:86:1c:01:ff:d7:26: 17:08:7f:f6:6c:80:09:24:dc:fb:ee:a1:76:f5:5f:f2:9a:9a: 8a:9a:7d:7d:12:02:eb:50:46:57:9d:b6:aa:3d:b8:8e:4f:b9: 53:75:07:a9:09:10:9f:e5:6f:65:12:da:09:c7:d5:8f:f5:aa: 96:45:11:f2:50:21:c4:2e:17:db:23:19:fa:b9:48:04:12:d9: be:bb:80:11:90:81:10:3f:cc:ac:5d:60:f0:61:4b:6d:a1:96: 74:e7:28:a8:2e:bc:4f:b0:9b:a2:95:e2:5b:b1:f1:71:6d:cd: db:f9:a0:20 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITdaSFxmk5zRvPGGpnGenFmf9TPzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI5N2FjMDAyOGQ2ZWZiZGRhZmI3ZDljNzFlMjllYjcxYzAw NWUzNGZjMTlmMWY3YzQyNDAeFw0yNTAzMTcxNTIwNDhaFw0yNTA0MjEyMzU5NTla MHoxSTBHBgNVBAUTQDViMDJlZGQ0MDczNTMyY2NkZWZmNWMwZjcxMWVkNTk5ODJk ZTBjYTZhZGRmYTNmMjY2Y2VmMDgxOWIzYzExYmYxLTArBgNVBAMTJGY3MjQzNzg1 LTQ2ZGUtNDE0Yi05YjhmLTdhOTY5OWU5NzllMjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKygrqqPPJPJiNFPeg3S7qpEbcYXpD2FjeEzNeUaDW+xiAmx 4n4HlAZmHsBDU7w5ho0mU4SfUVnGY42bBuipYTkY4/wyYXlCe0NWC9Zd++FWOfs7 Orwj4juYsps25NVondf1fu3I5wCEMhTXymEdqinhLr/kxvxNYfu5ov8/1/CFB6R5 K/MXPLfYNOMZjywgWvG0VJpxCdjeDyMQAoIOXVXbuIt1DVuXwW6qymn1FyFvaO5L gQw9U0qucbcNNVX6hV8EfTuboJhp66iGBahwunOdzNu+TUmX4kuznWVExiKOwxzA FhgHfgeHPQ8YolWRNg4AOluElXlaSXi5XVzzj70CAwEAAaOCArQwggKwMB0GA1Ud DgQWBBRwJCY8GQiFJZ+5X50IGG6KlqWNHzAfBgNVHSMEGDAWgBS6DOF+Iz+8cdQw q9rCwwx5BLag5zAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MDM1NzI3MmMtYTc5YS00NWJmLTk1ODYtOTJkZDQ5ZWYzMjIzL2QzZWE2ZWFiLWY0 MWYtNGU0Ni1hOGY2LTNkYTRhMTI4ZDc4Yy85N2FjMDAyOGQ2ZWZiZGRhZmI3ZDlj NzFlMjllYjcxYzAwNWUzNGZjMTlmMWY3YzQyNC5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS81NDYwMmZiMC1hOWQ0LTRmOWYtYjBjYS1iZTJh MTM5ZWE5MmIvZGRhOTM2MDQtYTU2OC00NGM4LWI5NGQtMmIzZGJmM2Y4MmVmLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2Et YmUyYTEzOWVhOTJiLzc3M2EtMzJjY2VLZXR4d0FYalQ4R2ZIM3hDUS5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHACYFnMAMATANBgkqhkiG9w0BAQsFAAOCAQEAU7Ppc2sYAy3PTpTTqJvwGLlf BH2sRmSquasgC8q0onnPHMa2ZNG2jQRjVVbQprKiN+Alu4zI9jkRvLx1UnSfctjb HBq3Go/PUaZQamo60KBpnsTcvVhfwdm/lYQvTb/d/XIikQuEcVgXQBZYwjRplC4l MWPxzgSNRW17t2cCZCN2wGKFv6OckxKQhhwB/9cmFwh/9myACSTc++6hdvVf8pqa ipp9fRIC61BGV522qj24jk+5U3UHqQkQn+VvZRLaCcfVj/WqlkUR8lAhxC4X2yMZ +rlIBBLZvruAEZCBED/MrF1g8GFLbaGWdOcoqC68T7CbopXiW7HxcW3N2/mgIA== -----END CERTIFICATE-----Generated at Fri Apr 4 23:28:02 2025 by rpki-client